OpenStack Nova Cloud Controller Charm

Certificates do not copy to proper file. Apache2 won't start

Bug #1939060 reported by Michael Quiniola
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
OpenStack Nova Cloud Controller Charm
New
Undecided
Unassigned

Bug Description

I've been battling this bug for a while.

Essentially, when applying the configurations for:

ssl_key
ssl_cert
os-public-hostname
os-internal-hostname
os-admin-hostname

apache creates the error:
Aug 5 01:10:17 juju-62203e-0-lxd-4 apachectl[1707505]: AH00526: Syntax error on line 14 of /etc/apache2/sites-enabled/openstack_https_frontend.conf:
Aug 5 01:10:17 juju-62203e-0-lxd-4 apachectl[1707505]: SSLCertificateFile: file '/etc/apache2/ssl/nova/cert_<DOMAIN>' does not exist or is empty

I've had to manually create this file over the years.

I see this happen on EVERY openstack charm. BUT! this only happens on the LEADER unit.

The leader does NOT transfer to a working unit in an HA setup

Revision history for this message
Billy Olsen (billy-olsen) wrote :

Thanks for raising this bug. Which versions of the charms are you using? You can start with one - if you have a bundle that'd be great, if not - it'd be nice to know which charm revisions from the charm store.

Revision history for this message
Michael Quiniola (qthepirate) wrote (last edit ):

@billy-olsen

This is active on the current version of the charm, originally deployed from the openstack-base bundle.

nova-cloud-controller 23.0.0 blocked 1 nova-cloud-controller jujucharms 357 ubuntu

I BELIEVE this applies across all charms though. It might be part of the charm template created/reused for openstack services.

I've been dealing with this bug since at LEAST the first Ussuri charms.

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.